Georgia Weidman’s PenTest book (Part 3)
I covered another few more chapters into Georgia Weidman’s Penetration Testing book (from chapter 5 up to chapter 8). The main take away for me in these few ...
Posts by Tag
- Beginner 4
- Vulnhub 2
- OSCP 2
- Python 2
- Web 2
- Methodology 1
- Bugbounty 1
- Walkthrough 1
- RSA 1
- CrackSSHKey 1
- Steganography 1
- Bash 1
- Curl 1
- SQLi 1
- Burp 1
- CICD 1
- Git 1
Beginner
Georgia Weidman’s PenTest book (Part 2)
Few more chapters into Georgia Weidman’s Penetration Testing book (up to chapter 4), I had setup the lab environment consisting all the VM in same closed sub...
Georgia Weidman’s PenTest book (Part 1)
After diving into reddits and blog after blogs on tips for starting out in Penetration Testing, this book Penetration Testing: A Hands-On Introduction to Hac...
What is Penetration Testing? What is Red Teaming?
I bought a book recently (via a redditor’s recommendation) The Hacker Playbook 3: Practical Guide To Penetration Testing by book author Peter Kim (a seasoned...
Vulnhub
Vulnhub - Kioptrix: Level 1 (#1)
This is an updated 2019 Vulnhub walkthrough for Kioptrix level 1 that is beginners difficulty (great for newbies!). If you had read some OSCP preparation blo...
Vulnhub - The Necromancer (Lessons learnt for newbies!)
Had my first hands-on experience with a CTF machine (The Necromancer:1) at Vulnhub and here are the lessons/key tools learnt from clearing stages/flags. Vuln...
OSCP
My OSCP Experience & Tips (I TRIED HARDER!!)
I TRIED HARDER! Passing Offensive Security Certified Professional (OSCP) is a milestone in my life and I hope to share my OSCP journey and hope it will help ...
Vulnhub - Kioptrix: Level 1 (#1)
This is an updated 2019 Vulnhub walkthrough for Kioptrix level 1 that is beginners difficulty (great for newbies!). If you had read some OSCP preparation blo...
Python
TryHackMe - Willow writeup
This is a boot-to-root CTF from TryHackMe and the CTF can be found @ https://www.tryhackme.com/room/willow. Key lessons learnt here: RSA algorithm, writing p...
Building a Money Tracking Bot (Telegram)
TLDR: Learn python basics from https://www.hackerrank.com/ Learn building telegram bots NUS Hackers Hackerschool - Developing Telegram Bots using Python...
Web
HTB - Freelancer
This HTB challenge is great for learning SQL injection! While you could also do it easily with SQLmap, I prefered doing it with Manual approach. Though time ...
HTB - Emdee five for life
I enjoyed this challenge for 2 reasons: Learn how to use Curl Understand HTTP headers
Methodology
Georgia Weidman’s PenTest book (Part 3)
I covered another few more chapters into Georgia Weidman’s Penetration Testing book (from chapter 5 up to chapter 8). The main take away for me in these few ...
Bugbounty
OWASP Broken Web Applications - Getting Started
After watching @NahamSec (Ben Sadeghipour) twitch interview with @Jhaddix (Jason Haddix), both legendary people in the bugbounty scene today, where Jason Had...
Walkthrough
OWASP Broken Web Applications - Getting Started
After watching @NahamSec (Ben Sadeghipour) twitch interview with @Jhaddix (Jason Haddix), both legendary people in the bugbounty scene today, where Jason Had...
RSA
TryHackMe - Willow writeup
This is a boot-to-root CTF from TryHackMe and the CTF can be found @ https://www.tryhackme.com/room/willow. Key lessons learnt here: RSA algorithm, writing p...
CrackSSHKey
TryHackMe - Willow writeup
This is a boot-to-root CTF from TryHackMe and the CTF can be found @ https://www.tryhackme.com/room/willow. Key lessons learnt here: RSA algorithm, writing p...
Steganography
TryHackMe - Willow writeup
This is a boot-to-root CTF from TryHackMe and the CTF can be found @ https://www.tryhackme.com/room/willow. Key lessons learnt here: RSA algorithm, writing p...
Bash
HTB - Emdee five for life
I enjoyed this challenge for 2 reasons: Learn how to use Curl Understand HTTP headers
Curl
HTB - Emdee five for life
I enjoyed this challenge for 2 reasons: Learn how to use Curl Understand HTTP headers
SQLi
HTB - Freelancer
This HTB challenge is great for learning SQL injection! While you could also do it easily with SQLmap, I prefered doing it with Manual approach. Though time ...
Burp
HTB - Freelancer
This HTB challenge is great for learning SQL injection! While you could also do it easily with SQLmap, I prefered doing it with Manual approach. Though time ...
CICD
SANS Kringlecon 2022 - Jolly CI/CD
Merry Christmas! Someone told me about SANS holiday hack challenge (KringleCon 2022!) https://www.sans.org/mlp/holiday-hack-challenge/ and I’ve been having a...
Git
SANS Kringlecon 2022 - Jolly CI/CD
Merry Christmas! Someone told me about SANS holiday hack challenge (KringleCon 2022!) https://www.sans.org/mlp/holiday-hack-challenge/ and I’ve been having a...